1 network management chapter 4 sla and qos postec lecture may 6-27, 2008 masayoshi ejiri japan
TRANSCRIPT
1
Network Management
Chapter 4 SLA and QoS
POSTEC Lecture
May 6-27 , 2008
Masayoshi Ejiri Japan
2
Agenda
1. ICT Operations and Management - Service Industries - ICT Services and Networks— - Target of the Management 2, Architecture ,Function ,Information Model and Business Process - ITU-T TMN( Telecommunications Management Network) - TeleManagement Forum Telecommunications Operations Map ( TOM) - Multi domain management and System Integration - Standardization3. OSS( Operations Support System ) Development - Software Architecture ,Key Technologies and Product Evaluation—4. SLA( Service Level Agreement) and QoS( Quality of Service) - SLA Definition , reference point and policy based negotiation5, IP/eBusiness Management - Paradigm shift , Architecture beyond TMN and enhanced TOM6. NGN( Next Generation Networks) Management - NGN Networks and Services , New Paradigm of ICT Business and Ma
nagement
3
Agenda
• Service Life cycle of QoS/SLA• IP QoS and network performance• QoS , QoE and SLA• SLA and OLA Overviews• SLA Management • SLA Features• SLA Negotiation• Security
4
Service Life cycle and QoS/SLA
• ITU-T Recommendation M.3341
Requirements for QoS/SLA management over the TMN X-interface for IP-based services
Management of QoS and associated SLAs require interaction
between many telecom operations business processes and TMN
management services as defined in ITU-T Rec. M.3200 and TMN
management function sets as defined in ITU-T Rec. M.3400.
5
M.3341_F5-1
Develop templatesand parametric
boundaries
Negotiateindividualcontracts
Take line/serviceorders andprovision
Monitor,surveillance,maintain, bill
Reassess
Product/servicedevelopment
Negotiationand sales Implementation Execution Assessment
M.3341 – Service life cycle (Figure 5-1/GB917)
•Service product planning and development;•Negotiation and sales of a service product;•Implementation (configuration, provisioning and commissioning) of a service product;•Operation and maintenance of a service product;•Periodic assessment of the QoS of a service and whether it meets the SLA.
6
QoS/SLA management interactions across QMS interface M.3341
SC( Service Customer) initiated:• Retrieve MPs MP : Measurement Point• Retrieve Obs Ob : Observation• Configure Ob• Assign PM data collection interval PM : Performance Management • Suspend/Resume PM data collection • Reset PM data • Assign PM history duration • Assign PM threshold (including severity) • Request PM data (current or history) SP( Service Provider ) initiated/provided:• Report MP configuration changes• Report SP suspension of PM data collection• Report PM threshold violation
QMS : QoS/SLA Management Services
7
M.3341_F3-1
MP Measurement Point
ISP
TSP TSP
SC SCNONONONO
MP-a MP-b MP-c MP-d MP-e MP-f MP-g MP-h
Observation
Measurement point and observation M.3341
SC :Service CustomerNO :Network OperatorTSP: Telecommunications Service ProviderISP: Internet Service Provider
The observation provides QoS measurements from the ingress to the egress of the ISP's network regardless of the service providers or network operators involved.
8
IP QoS related Y series . Recommendations
• Y.1540 Internet protocol data communication service –
IP packet transfer and availability performance parameters
• Y.1541Network performance objectives for IP-based services
Note : SERIES Y: GLOBAL INFORMATION INFRASTRUCTURE, INTERNET PROTOCOL ASPECTS AND NEXT-GENERATION NETWORKS
Internet protocol aspects – Quality of service and network performance
9
Y.1540_F02
RouterSRC Link
IP layer
IP packet
Y.1540
(TCP) (UDP)
(FTP)(RTP)
(HTTP)
etc.
IP layer
LL
Higher layerperformance
User information(e.g., data)
Lower layerperformance(3 instances)
Layer serviceperformance
Networkcomponents:
LL LL
Link Router Link DST
IP layer IP layer
(TCP)(UDP)
(FTP)(RTP)
(HTTP)etc.
User information(e.g., data)
Rec. Y.1540 – Layered model of performance for IP service – Example
SRC : Source hostDST : Destination host
10
Services in ISO 7 layers Model
• Layer 7 : Application
• Layer 6 : Presentation
• Layer 5 : Session
• Layer 4 : Transport
• Layer 3 : Network
• Layer 2 : Data link
• Layer 1 : PhysicalPhysical service
Data link service
Network service
Transport service
Session service
Presentation service
Application service
Human/Business
11
Y.1540_F04
Network Section (NS)
Exchange Link (EL)
Edge Router
source NS destination NS
(more NS and EL)(more NS and EL)
(more NS and EL)
A
C
B
D
E
F
G
ER
ER
ER
ER
ER ER
ER
ER
ER
ER
ER
ER
ER
SRC
DST
Generic IP Service performance model :IP Network Connectivity Y.1540
12
Y.1541 – UNI-to-UNI reference path for network QoS objectives
13
End-to-End QoS
• NOTE – The phrase "End-to-End" has a different meaning in Recommendations concerning user QoS classes, where end-to-end means, for example, from mouth to ear in voice quality Recommendations. Within the context of this Recommendation( Y.1541), end-to-end is to be understood as from UNI‑to‑UNI.
14
Quality evaluation MOS ITU-T Rec P.800
Listening-quality scale
• Excellent 5• Good 4• Fair 3• Poor 2• Bad 1
The quantity evaluated from the scores (mean listening-quality opinion score, or simply mean opinion score) is represented by the symbol MOS.
15
DMOS
Degradation category scale• 5 Degradation is inaudible.• 4 Degradation is audible but not annoying.• 3 Degradation is slightly annoying.• 2 Degradation is annoying.• 1 Degradation is very annoying.
The quantity evaluated from the scores (degradation mean opinion score) is represented by the symbol DMOS.
Note: In non voice services , audible should be perceptible.
16
NP,QoS ,QoE and SLA
• Network performance• Quality of Service • Quality of Experience• Quality of Preference ??• Service Level Agreement
17
Definition of Quality of Experience (QoE)R ec.G100
The overall acceptability of an application or service, as perceived subjectively by the end-user.
• NOTE 1 – Quality of Experience includes the complete end-to-end system effects (client, terminal, network, services infrastructure, etc.).
• NOTE 2 – Overall acceptability may be influenced by user expectations and context.
18
REC.P.862 – Overview of the basic philosophy used in PESQ
Note : SERIES P: TELEPHONE TRANSMISSION QUALITY, TELEPHONE INSTALLATIONS, LOCAL LINE NETWORKS-Methods for objective and subjective assessment of quality-Rec. P.862Perceptual evaluation of speech quality (PESQ): An objective method for end-to-end speech quality assessment of narrow-band telephone networks and speech codecs
19
Subjective quality assessmentfor voice codec Rec. P 830
ACR( Absolute Category Rating ) on Listening Quality scaleTesting procedure• Source speech materials : recording system, speech sample, talker, s
peech level/equalization• Experiment parameter : Codec condition( speech /listening level, talk
ers, errors, bit rate, transcodings, tandeming, bit rate mismatch, environmental noise, signaling, reference condition( SNR, codecs)
• Experiment design combination of parameters result in a single experiment minimum s
et of experiments• Listening test procedure : : Receiving system, opinion scale, gaussia
n noise• Analysis of results
20
Subjective audiovisual quality assessmentfor multimedia applications Rec. P 911
Typical viewing and listening conditions • Room size : Specify L W H• Viewing distance : 1-8 H• Peak luminance of the screen : 100-200 cd/m2• Ratio of luminance of inactive screen to peak luminance :
0.05• Ratio of the luminance of the screen, when displaying only
black level in a completely dark room, to that corresponding to peak white : 0.1
• Ratio of luminance of background behind picture monitor to peak luminance of picture : 0.2
• Chromaticity of background : D65• Background room illumination : 20 lux
• Background noise level : 30 dBA• Listening level : 80 dBA• Reverberation time : <500 ms, f > 150 Hz
21
REC.P.862 – Overview of the basic philosophy used in PESQ (2)
22
Objective perceptual video quality measurement Rec. J.144
• Measurement method
0
5
10 15
20
25
T0909730-00
Input/referencevideo
Coder
Measurementsystem
Objective picturequality rating
Transmission impairments
Digital TV chain(network, equipment)
Referencedecoder
Output/degradedvideo
Four methods are recommended by VQED( Video Quality Experts Group)•British Telecon,• Yonsei Univ,/SK Telecom/Radio Research•CpqD•NTIA
23
SERIES G: TRANSMISSION SYSTEMS AND MEDIA, DIGITAL SYSTEMS AND NETWORKSInternational telephone connections and circuits – General definitions
REC. G.107“The E-model, a computational model for use in transmission planning “The E-model is based on the equipment impairment factor method, following previous transmission rating models. It was developed by an ETSI ad hoc group called "Voice Transmission Quality from Mouth to Ear".
REC.G.1070Opinion model for video-telephony applications
a computational model for point-to-point interactive videophone applications over IP networks that is useful as a QoE/QoS planning tool for assessing the combined effects of variations in several video and speech parameters that affect the quality of experience (QoE).
24G.107_F01
Quantizing distortion qdu
Expectation factor A
Mean one-way delay T
Absolute delay Ta
SLR RLR
OLR
0 dBr point
Ds-factor
Circuit noise Nc referred to 0 dBr
Roomnoise Ps
Weighted echo path loss WEPL
Round-tripdelay Tr
Send sideReceive side
Listener sidetonerating LSTR(LSTR =STMR + Dr)
Talker echoloudness ratingTELR
Sidetone maskingrating STMR
Roomnoise Pr
Dr-factor
Equipment impairment factor IePacket-loss robustness factor Bpl
Coding/Decoding
Packet-loss probability Ppl
REC.G.107 – Reference connection of the E-model
Rating factor R•Basic signal to noise ratio•Simultaneous impairment •Delay impairment factor•Equipment impairment•Advantage factor
25
Parameter Abbr. UnitDefault value
Permitted range
Send Loudness Rating SLR dB +8 0 ... +18
Receive Loudness Rating RLR dB +2 5 ... +14
Sidetone Masking Rating STMR dB 15 10 ... 20
Listener Sidetone Rating LSTR dB 18 13 ... 23
D-Value of Telephone, Send Side Ds – 3 –3 ... +3
D-Value of Telephone Receive Side Dr – 3 3 ... +3
Talker Echo Loudness Rating TELR dB 65 5 ... 65
Weighted Echo Path Loss WEPL dB 110 5 ... 110
Mean one-way Delay of the Echo Path T ms 0 0 ... 500
Round-Trip Delay in a 4-wire Loop Tr ms 0 0 ... 1000
Absolute Delay in echo-free Connections
Ta ms 0 0 ... 500
Number of Quantization Distortion Units
qdu – 1 1 ... 14
Equipment Impairment Factor Ie – 0 0 ... 40
Packet-loss Robustness Factor Bpl – 1 1 ... 40
Random Packet-loss Probability Ppl % 0 0 ... 20
Burst Ratio BurstR – 1 1 … 2
Circuit Noise referred to 0 dBr-point Nc dBm0p
70 80 ... 40
Noise Floor at the Receive Side Nfor dBmp 64 –
Room Noise at the Send Side Ps dB(A) 35 35 ... 85
Room Noise at the Receive Side Pr dB(A) 35 35 ... 85
Advantage Factor A – 0 0 ... 20
E-modelParameters and value s
26
Video-relatedassumption
Commonassumption
Speech-relatedassumption
Video qualityparameters
Speech quality parameters
Video qualityestimation function
Speech qualityestimation
function
MultimediaQuality
Integrationfunction
Coefficientdatabase
Coefficientdatabase
End –to-end delay
End –to-end delay
Video-alone quality
Speech-alonequality
Video quality
Multimediaquality
Speech quality
REC. G1070 Opinion model for video-telephony applicationsFramework of multimedia communication quality assessment model
27
Quality assessment factorsVideo-related Assumption Terminal type Terminal characteristics Monitor size Monitor resolution Ambient illuminance
Common assumption Conversational task Packet-loss pattern
Speech-related assumption Terminal factors Loudness rating etc. Environmental factors Ambient noise Network factors Packet –loss pattern
Video quality parameters End-to-end delay Video codec Codec type Video format Key frame interval Video display size Bit rate Frame rate Packet-loss rate
Speech quality parameters End-to-end delay Speech codec Codec type Bit rate Packet-loss rate TELR(Talker echo loundness rating)
28
Assumptions about monitor characteristics
Monitor specifications Value
Diagonal lengtha) 2-10 inches
Dot pitch <0.30
Colour temperature 6500 K
Bit depth 8 bits/colour
Refresh rate ≥60 Hz
Brightness 100-300 cd/m2
a) "Diagonal length" refers to the image size on the monitor screen.
29
IP packet transfer performance parameters REC.Y.1540
Speed ,Accuracy and Dependability• IPTD : IP Packet Transfer Delay• IPDV : IP packet Delay Variation• IPER : IP Packet Error Ratio• IPLR : IP Packet Loss Ratio• IPRR : IP Packet Reordering Ratio • IPSLBR : IP Packet Severe Loss Block Ratio• IPDR : IP Packet Duplicate Ratio• RIPR : Replicated IP Packet Ration• IPPT : IP Packet Throughput
30
UnavailabilityUnavailability: IP Packet Loss Ration(IPLR) > C1: IP Packet Loss Ration(IPLR) > C1 C1 = 0.75 C1 = 0.75 Availability Parameters:% time ratioAvailability Parameters:% time ratio
Percent IP service unavailability (PIU) Percent IP service unavailability (PIU) Percent IP service availability (PIA)Percent IP service availability (PIA)
IP service IP service availability availability (REC.(REC.Y.1540)Y.1540)
IP Service Unavailable
IP Service Available
Availability Availability ParametersParameters
31
Conditions for IP Performance Measurement Rec.Y1540
1) the exact sections being measured:• SRC and DST for end-to-end measurements;• MP bounding an NSE being measured.2) measurement time:• how long samples were collected;• when the measurement occurred.3) exact traffic characteristics:• rate at which the SRC is offering traffic;• SRC traffic pattern;• competing traffic at the SRC and DST;• IP packet size.4) type of measurement:• in-service or out-of-service;• active or passive.5) summaries of the measured data:• means, worst-case, empirical quantities;• summarizing period; –short period (e.g., one hour); – long period (e.g., one day, one week, one month).
32
Y.1541 – Hypothetical reference path for QoS class 0
33
Table 1/Y.1541 – IP network QoS class definitions andnetwork performance objectives
Network performance parameter
Nature of network performance objective
QoS Classes
Class 0 Class 1 Class 2 Class 3 Class 4
Class 5Unspecified
IPTD Upper bound on the mean IPTD (Note 1)
100 ms 400 ms 100 ms 400 ms 1 s U
IPDV Upper bound on the 1 10–3 quantile of IPTD minus the minimum IPTD (Note 2)
50 ms (Note 3)
50 ms (Note 3)
U U U U
IPLR Upper bound on the packet loss probability
1 × 10–3 (Note 4)
1 × 10–3 (Note 4)
1 × 10–3 1 × 10–3 1 × 10–3 U
IPER Upper bound 1 × 10–4 (Note 5) U
General Notes:
34
Table 3/Y.1541 – Provisional IP network QoS class definitions andnetwork performance objectives
Network performance parameter
Nature of network performance objective
QoS Classes
Class 6 Class 7
IPTD
Upper bound on the mean IPTD
100 ms 400 ms
IPDV
Upper bound on the 1 10–5 quantile of IPTD minus the minimum IPTD (Note 1)
50 ms
IPLR
Upper bound on the packet loss ratio
1 × 10–5
IPER Upper bound 1 × 10–6
IPRR Upper bound 1 × 10–6
35
QoS Controlmodified Nakajima’s IM2005 panel presentation
Control• Admission Control : managed bandwidth• Fairness Control : minimum bandwidth • Priority Control : reactive control, priority conflict
Outcome• Guarantee : with proactive control e.g. pre assigned
resource, on demand reservation, • Managed Quality : with reactive control• Best effort : with no active control
36
SLA ?? -How to reach the practical Agreement by Negotiation ?- ,
• Who drive SLA ?• Why SLA is needed ?• What S.L.A. is ?• When SLA is agreed ?• How to agree SLA ?
37
ITU-T Rec. E860 ( 2002)
• “A Service Level Agreement is a formal agreement between two or more entities that is reached after a negotiating activities with the scope to access service characteristics, responsibilities and priorities of every part “
38
SLA for IP Management
Public Network / ServicesPublic Network / Services IP network / ServicesIP network / Services
Fixed QoSFixed QoS Negotiated CoSNegotiated CoS
Network Performance OrientedNetwork Performance Oriented Human Interface OrientedHuman Interface Oriented
Internal within SPInternal within SP Open and Visible to CustomerOpen and Visible to Customerss
<Best Effort SLA Announcement><Best Effort SLA Announcement> <Guaranteed SLA Agreement><Guaranteed SLA Agreement>Based on embedded Based on embedded Based on Management Based on Management QoS Mechanism QoS Mechanism Excellence and NegotiationExcellence and Negotiation
39
Service Level Agreement ???
• Service ? Transport , Contents Delivery, Operation, Billing,etc.
• Level ? Performance : QoS, CoS, Accuracy, Timeliness, etc. Treatment : Reliability,Priority, etc. Value : Absolute, Average in long term/in group,etc.
• Agreement ? Negotiation, Selection of SLA Package/menu,etc. Contract : Long term, Call by Call. Specific Call,etc.
40
Operator NENE
CustomerCustomer
OSS
Service Plane
Operations Service Communications
Service
Managing Plane
NetworkPlanner
ServicePlanner
Business Management Service
Operations
Scope of Operations
EnterpriseManager
Operator Service
41
Y.1540_F02
RouterSRC Link
IP layer
IP packet
Y.1540
(TCP) (UDP)
(FTP)(RTP)
(HTTP)
etc.
IP layer
LL
Higher layerperformance
User information(e.g., data)
Lower layerperformance(3 instances)
Layer serviceperformance
Networkcomponents:
LL LL
Link Router Link DST
IP layer IP layer
(TCP)(UDP)
(FTP)(RTP)
(HTTP)etc.
User information(e.g., data)
Rec. Y.1540 – Layered model of performance for IP service – Example
SRC : Source hostDST : Destination host
42
Services in ISO 7 layers Model
• Layer 7 : Application
• Layer 6 : Presentation
• Layer 5 : Session
• Layer 4 : Transport
• Layer 3 : Network
• Layer 2 : Data link
• Layer 1 : PhysicalPhysical service
Data link service
Network service
Transport service
Session service
Presentation service
Application service
Human/Business
43
TMF GB917 SLA Positioning within the Business Enterprise MVC
44
SLA and OLA Overviews
Customer( eBusiness)
Partners
TransportResource
•Content Delivery Services SLA•Transport Services SLA
•Operations ServicesSLA
Resource ProvisioningOLA
Operations SupportOLA
SLANegotiation
OLA Negotiation
Operations Resource
Content Delivery Resource
Transport Services OLAService Provider
Communications Resource Suppliers
Operations Resource Supporters
45
Guaranteed /Best Effort SLA
• Service Priority ( Class of Services) : Guaranteed by Policy based Operations
• Static/Average QoS Value
: Guaranteed by NW design/implementation
• Individual or Target Service QoS Value
: Guaranteed by successful Pre-Provisioning/Resource Reservation
: Best Effort in General
46
SLA Management(Reference Point)
Customer
Service Provider
Partner
Resource
Communication ServicesSLA
Operations ServicesSLA
Resources ProvisioningSLA
Operations SupportSLA
OSF
OSF
SLA Negotiation
SLA Negotiation
Operator
OSF
47
SLA Management(Monitor/ Report)
Partner
Resource
Operation
SM
EM
NM
SM
NE
Customer
QoS Events
QoS Parameter
SLA Report, Invoice
QoS Parameter
QoS Value/MTxx
Mapping
AggregatePolicy
CoS
48
SLA Management(Control)
Partner
Resource
Operation
SM
EM
NM
SM
NE
Customer
QoS Control
Parameter Control
SO,TT,Bill
Parameter Control
QoS order
Mapping
Policy
Treatment
Analysis
49
SLA and OLA Overviews
Customer( eBusiness)
Partners
TransportResource
•Content Delivery Services SLA•Transport Services SLA
•Operations ServicesSLA
Resource ProvisioningOLA
Operations SupportOLA
SLANegotiation
OLA Negotiation
Operations Resource
Content Delivery Resource
Transport Services OLAService Provider
Communications Resource Suppliers
Operations Resource Supporters
50
SLA Features
• Services 1, Transport Services
2, Contents Delivery Services
3, Operations Services
• Features 1, Fundamental (Performance , Accuracy & Access)
2, RAS(Reliability , Availability & Survivability)
3, Security
51
Operation Services SLAs-Customer Care Ability-
• Accuracy & Timeliness Service Delivery, Report Generation, Handling of Billing, Call
pick up time, Compensation when SLA violated
• Access Capability Availability of Contact ( Method, Opening time etc)
• RAS Human/Organizational structure for provisioning, Fault &
Disaster, Fairness & Priority, Hot line
• Security Mechanism for Privacy protection, Countermeasure for Security
52
Transport Services SLAs-Transport Capability-
• Performance & QoS Transmission Quality ( Bandwidth, Delay, Packet loss, Error ) --Average Value in long term and/or in group, Absolute value for
Call by Call or Specific Call—
• Access Capability Connectivity, Call loss ratio, Call setup time
• RAS Mean ( Max/min) times between outage, Disaster/Fault recovery pri
ority
• Security Access control mechanism, Prevention mechanism for network atta
ck
53
Content Delivery Services SLA- Reliability and Guarantee Capability-
Transport Services SLA plus
• Security Prevention mechanism, countermeasure
&compensation
--for Access authorization /certification
--for Protection of Content Integrity, Confidentiality,
Authentication, Copyright
54
Classification of SLA Features
Performance & Accuracy
AccessCapability
RAS
Security
Feature Type Transport Services SLA Operations Services SLA
- Bandwidth, - Packet Loss, - Error rate,- Delay - throughput
Accuracy and timeliness of (1) Service delivery, Report generation,Etc….Mean/Max time between call pickupCompensation when SLA violated
- Connectivity- Call Loss Ratio- Call setup time
Mean time between outagesDisaster/Fault recovery mechanism
Access Control MechanismPrevention of Network Attacks,Eavesdropping, etc…
Contact Method – Email, Phone, Fax,Etc…..Contact Availability – opening timesAccess control mechanism
Hot lineOrganisational structure to supportDisaster/Fault recovery
Privacy Protection mechanisms
55
SLA parameter example• ATC ATM Transfer capability• BBE Background block error• BBER Back ground block error ratio• BER Bit error ratio• CD Cell delay• CDV Cell delay variation• CDVT Cell error variation telerance• CE Cell error• CER Cell error ratio• CL Cell loss• CLR Cell loss ratio• CM Cell misinsertion • CMR Cell misinsertion ratio• CTD Cell transfer delay• ECBP E2E connection blocking probability• ES Errored second• ESR Errored second ratio• FTD Frame transfer delay• IPDV IP packet delay variation• IPER IP packet error ratio• IPLR IP packet loss ratio• IPTD IP packet transfer delay
• SECB Severely errored cell block• SECBR Severely errored cell block ratio• SEP Severely errored period• SEOI Severely errored period intensity• SES Severely errored second• SESR Severely errored second ratio
• MTBF Mean time between failures• MTBO Mean time between outage• MTIE Maximum time interval error• MTPS Mean time to provide service• MTRS Mean time to restore service• MTTP Mean time to provision• MTTR Mean time to repair• NER Network effectiveness ratio• SA Service availability• SAT SAP( Service access point ) activity time• SCT SAP cover time
56
57
SLA Categories for Customer Preference
Customers
Marketing
OperationsResource
Communications Resource
Market Research
Proactive Sales
InternalNegotiation
Define Default
DefineClass of Service
Limited SLAPick&MixSLA
Negotiated SLA
58
59
60
Service Negotiation
ResourcesResourcesCustomerCustomer
OSF
Pricing DB
Resource DB
Class of Service DB
Traffic/ QoS
DB
1. Negotiation1. Negotiation
3. Agreed Service3. Agreed Service
Status ReportStatus Report
2. Service 2. Service ProvisionProvision
4. Service Report4. Service Report
Operation
Service Negotiation FunctionService Negotiation Function
Policy
61
CustomersCustomers OperatorsOperators
OSSOSSOSSOSS
SLA Negotiation
Policy
Management
Policy DescriptorPolicy Descriptor
Policy EditorPolicy Editor
Policy ExecutorPolicy Executor
Policy DecisionFunction
Policy Repository
SLA Negotiation based on Policy Management
• PricePrice
・ ・ QoS / CoSQoS / CoS
・ ・ BandwidthBandwidth
・ ・ Delivery TiDelivery Timeme
・ ・ Security Security • MTxxMTxx
etc.etc.
FeaturesFeatures・ ・ Static Static (long term)(long term)
・ ・ Pre Pre AssignedAssigned
・ ・ On On DemandDemand
TimingTiming
Negotiation?
62
Operation Window(e.g XML)
Negotiation Agent(e.g Java applet)
IT Capable Terminal
JVMWeb Browseretc.
Negotiation Agent(e.g Java applet)
Operation Window(e.g XML)
Customer Service Provider
NegotiationAgent
OperationWindow
Service/ResourceStatus Catalogue
NegotiationInquiry
63
For Effective SLA
• Customer can select SPs• Customer can negotiate/choose SLA• SLA should be reflected Customer Perception• SLA should be Monitored and Reported to Cu
stomers to confirm SLA • SPs should Compensate if SLA Violation occ
urs
64
Security ?Human/Social Human/Social
Nature
Mechanism
•Life•Property•Privilege•Privacy•Comfort
•Goodwill•Malice•Indifference•Credit•Treachery•Espionage
•Nation•Law•Society•Communications •Technology
•Environment•Disaster
65
Security Management • Management of Human /Society
Moral, Ethics, Education Law, Regulation, Community, Privacy, Vigilant ?
• Management of Information distribution/exchange Safe, secure ,accurate and comfortable ICT network/services
• Management of environment Prognosis, disaster prevention, environmental preservation
66
IP/eBusiness Security Management • Network Security -RAS -Privacy ( Tapping, fairness , secrecy of communications, customer information) -Attack : Physical, Logical
• Information distribution security - Integrity of contents and delivery
-Human verification, certification , justification
• eBusiness security ーEnsure real and virtual money
-Forgery( Fake), Fraud, Robbery with/without violence, Credibility , Confidence
ーPrivacy ( Anonymity, Private information leakage)
-Privacy(個人情報の目的外利用)
67
Security Objects• Contents• Applications• Communications• Operations
Security Domains•Management Layers/processes•Service Providers•Users•Physical/Logical Facilities
Security Mechanisms• Security Technologies• Security Modules• Security Systems• Security Infrastructure
ICT Security Management Framework
Environment(Community-Culture
including regulatory issues )
68
Security Objects
• Contents Completeness( Integrity ), Secrecy, Certification, Copyright
• Application Virus, Worm, Destruction, Falsify, Fishing,
• Communications Access/admission, Routing, AAA (Authentication,
Authorization , and Accounting), Tapping, Pretence, Espionage, IP spoof
Attack ( Intrusion ,Denial of service, Service degradation, jamming, etc.)
• Operations Privacy, Leakage, Risk
69
Security Domains• Management Layers/processes OSI 7 Layers services, TMN Logical layer, FAB ( Fulfillment,
assurance and billing ), • Service Providers and partners Contracted SP, Virtual SP, ASP, CSP, Management SP,
Network Operator, VMNO, Service/operation agent, • Users Enterprise customers Consumers End users Customer
representatives Shareholders • Physical/Logical Facilities Terminals, CPE/CPN, Transmission , Service node, Storage,
Data center, Call center, Address/phone number, Routing table, Domain name server
70
Security Mechanisms/Technologies
• Security Technologies Encryption, Cryptograph, Authentication, Firewall, IPsec(Secu
rity Architecture for IP),
• Security Modules SOCKS, Digital signature, Secure protocol ( e.g.IKE: Internet
Key Exchange protocol) Bio metrics, Intrusion detection/block, Anti virus, IC card, Electronic cash
• Security Systems and Infrastructure PKI (Public Key Infrastructure), PKI authority, KES (Key
Escrowed System) , Certification authority, SET : Secure Electronic Transaction, Standardization
Regulation, Legal and administration protection, Penalty